CVE-2026-4392

Summary

A vulnerability was detected in TeamSpeak 3 Server up to 3.13.7. This issue affects some unknown processing of the component clientek Handshake Handler. Performing a manipulation of the argument proof results in reachable assertion. Remote exploitation of the attack is possible. Upgrading to version 3.13.8 is capable of addressing this issue. Upgrading the affected component is recommended.

Affected Software

VendorProductVersion RangeStatus
n/aTeamSpeak 3 Server3.13.0affected
n/aTeamSpeak 3 Server3.13.1affected
n/aTeamSpeak 3 Server3.13.2affected
n/aTeamSpeak 3 Server3.13.3affected
n/aTeamSpeak 3 Server3.13.4affected
n/aTeamSpeak 3 Server3.13.5affected
n/aTeamSpeak 3 Server3.13.6affected
n/aTeamSpeak 3 Server3.13.7affected
n/aTeamSpeak 3 Server3.13.8unaffected

Weaknesses

  • CWE-617: Reachable Assertion

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References